Quick Picks from Bro/Zeek logs

BSidesDE 2018

Presented by: Fatema Bannat Wala
Date: Saturday November 10, 2018
Time: 10:30 - 10:50
Location: Track 1

This is intended to be a firetalk with power-pack presentation on how you can quickly pick some cool things that bad actors are doing, right away from Bro (Now Zeek) logs, without doing ANY kind of customization or loading super cool custom scripts. Isn't that neat! Yes, Bro can detect some neat stuff with just a bare minimum running configuration and you can flaunt all the new findings from the Bro logs in front of your colleagues and Friends! (P.S: Not Sure what is Bro, How to install and run it? - No worries, attend ""The Bro Primer"" talk on Friday to get your feet wet in Broland!)

Audience: Everyone

Fatema Bannat Wala

Fatema Bannat Wala is a Security Engineer at the University of Delaware where her responsibilities include monitoring network traffic for intrusions and malicious activities. Fatema has held prior roles in security research and software engineering and she holds CISSP certification and GIAC security certifications in intrusion analysis, incident handling and penetration testing.


KhanFu - Mobile schedules for INFOSEC conferences.
Mobile interface | Alternate Formats